From: Daniel Sheedy (dansheedy@gmx.net)
Date: Wed Jan 07 2004 - 12:49:05 GMT-3
Hi Everyone!
I have been playing around with ISDN and have come up with a problem that I'm
having a hard time getting around.
Router A dials Router B.
Behind Router A is a LAN. This LAN is hidden using NAT, overloaded onto a
dialer interface.
I want to make the interesting traffic only the traffic coming from the LAN
behind Router A.
Therefore, if the Router replies to a ping, or a sweep, or anything from
Router B... this should not be considered interesting traffic. Only traffic
that goes through the NAT, from the LAN behind Router A should be considered
interesting.
I can make it work without NAT involved, but once we put in NAT, is it
possible? Or is it now NATing everything before it checks if it is
interesting or not? I have noticed that if I use an access list stipulating
the LAN traffic to anywhere as interesting, it brings the line up with the
first packet, and then no more packets are considered interesting... thus
timing out after the 'dialer idle-timeout X' seconds, only to redial
immediately.
Any ideas?
Dan Sheedy
This archive was generated by hypermail 2.1.4 : Mon Feb 02 2004 - 09:07:37 GMT-3